Submit #731095: code-projects Online Product Reservation system in PHP with source code V1.0 SQL Injectioninfo

Titel	code-projects Online Product Reservation system in PHP with source code V1.0 SQL Injection
Beschreibung	A critical SQL injection vulnerability exists in the shopping cart functionality. The application directly concatenates POST parameter and session variable into multiple SQL queries (SELECT, UPDATE, INSERT) without validation, allowing attackers to extract data and manipulate cart contents.
Quelle	⚠️ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/sqli_left_cart.php.md
Benutzer	Ho Cherry (UID 94105)
Einreichung	03.01.2026 12:20 (vor 3 Monaten)
Moderieren	04.01.2026 08:01 (20 hours later)
Status	Akzeptiert
VulDB Eintrag	339476 [code-projects Online Product Reservation System 1.0 left_cart.php ID SQL Injection]
Punkte	18

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!